• ulterno@programming.devEnglish
    4·
    4 days ago

    vaxry talked about LD_PRELOAD and I feel like that is a non-issue in this case.
    If an attacker has the ability to modify LD_PRELOAD of an application, they already an ability to modify its behaviour without depending upon what D-Bus may let it do.
    And if the attacker can change LD_PRELOAD for a process running as root, they might as well affect the target service directly rather than try doing something with the dbus daemon.

  • LiveLM@lemmy.zipEnglish
    4·
    5 days ago

    With each passing day Vaxry seems closer and closer to re-implementing the entire userland, I don’t know how he avoids burning out…

  • Samueru_sama@programming.devEnglish
    2·
    5 days ago

    Portals could have been much simpler like how xdg-open works.

    I’m surprised it seems nobody has tried to write an alternative to portals that doesn’t use dbus?